Methods, systems and computer program products for masking tax data during collaborative tax return preparation

ABSTRACT

A system for masking tax data during collaborative preparation of an electronic tax return, the system includes a server computer having a tax return preparation program running thereon. The system also includes a tax return preparation computer having a first browser program running thereon. The system further includes a support computer having a second browser program running thereon. Moreover, the system includes a network operatively coupling the server computer, tax return preparation computer, and the support computer. The first browser includes a masking module configured to automatically mask a tax datum without user intervention before transmitting the tax datum to the server computer for subsequent transmission to the support computer. The tax datum is masked in real time during collaborative preparation of the electronic tax return.

This application is a continuation of U.S. application Ser. No.15/009,406, filed Jan. 28, 2016, entitled “METHODS, SYSTEMS AND COMPUTERPROGRAM PRODUCTS FOR MASKING TAX DATA DURING COLLABORATIVE TAX RETURNPREPARATION. The content of which is incorporated herein by reference inits entirety.

This application includes subject matter similar to the subject matterdescribed in the following co-owned applications: U.S. application Ser.No. 12/358,545, filed Jan. 23, 2009, now U.S. Pat. No. 9,191,152, issuedMay 29, 2012, entitled “METHODS SYSTEMS AND ARTICLES OF MANUFACTURE FORGENERATING AND DISPLAYING VIDEO RELATED TO FINANCIAL APPLICATION”; andU.S. application Ser. No. 14/528,719, filed Oct. 30, 2014, entitled“METHODS, SYSTEMS AND COMPUTER PROGRAM PRODUCTS FOR COLLABORATIVE TAXRETURN PREPARATION.” The contents of which are incorporated herein byreference in their entirety.

SUMMARY

Embodiments are directed to computer-implemented methods for calculatingan estimated result while preparing an electronic tax return.

In one embodiment directed to a system for masking tax data duringcollaborative preparation of an electronic tax return, the systemincludes a server computer having a tax return preparation programrunning thereon. The system also includes a tax return preparationcomputer having a first browser program running thereon. The systemfurther includes a support computer having a second browser programrunning thereon. Moreover, the system includes a network operativelycoupling the server computer, tax return preparation computer, and thesupport computer. The first browser includes a masking module configuredto automatically mask a tax datum without user intervention beforetransmitting the tax datum to the server computer for subsequenttransmission to the support computer. The tax datum is masked in realtime during collaborative preparation of the electronic tax return.

In a single or multiple embodiments, the masking module includes aJavaScript program. The masking module may be configured toautomatically mask the tax datum without user intervention before thefirst browser transmits the tax datum to the server for subsequenttransmission to the support computer. The masking module may beconfigured to determine a security level for the support computer and tomask the tax datum based on the security level.

In a single or multiple embodiments, the first browser includes apattern recognition module configured to identify sensitive taxpayerdata. The server computer may have a metadata markup module runningthereon, the metadata markup module being configured to identifysensitive taxpayer data fields.

In a single or multiple embodiments, the server computer has aco-browsing module running thereon, the co-browsing module beingconfigured to send data related to a tax return to the tax returnpreparation computer and the support computer for display using thefirst and second browser programs, respectively. The co-browsing modulemay be configured to send an invitation to join a co-browsing session tothe support computer, the invitation including a hyperlink. Theco-browsing module may be configured to generate an access code for theco-browsing session and send the access code to the tax returnpreparation computer. The co-browsing module may be configured to senddata related to the tax return to the support computer only after thesupport computer enters the access code at a page accessed through thehyperlink.

In another embodiment directed to a computer-implemented method formasking tax data during collaborative preparation of an electronic taxreturn using a system including a server computer, a tax returnpreparation computer, and a support computer operatively coupled by anetwork, the method includes a first browser running on the tax returnpreparation computer automatically masking a tax datum without userintervention before transmitting the tax datum to the server computerfor subsequent transmission to the support computer. The tax datum ismasked in real time during collaborative preparation of the electronictax return.

In a single or multiple embodiments, the first browser includes amasking module. The method also includes the masking moduleautomatically masking the tax datum without user intervention before thefirst browser transmits the tax datum to the server for subsequenttransmission to the support computer. The method may further include themasking module determining a security level for the support computer andmasking the tax datum based on the security level.

In a single or multiple embodiments, the first browser includes apattern recognition module. The method also includes the patternrecognition module identifying sensitive taxpayer data.

In a single or multiple embodiments, the server computer has a metadatamarkup module running thereon. The method also includes the metadatamarkup module identifying sensitive taxpayer data fields.

In a single or multiple embodiments, the server computer has aco-browsing module running thereon. The method also includes theco-browsing module sending data related to a tax return to the taxreturn preparation computer and the support computer for display usingthe first and second browser programs, respectively.

In a single or multiple embodiments, the method also includes theco-browsing module sending an invitation to join a co-browsing sessionto the support computer, the invitation including a hyperlink. Themethod may further include the co-browsing module generating an accesscode for the co-browsing session and sending the access code to the taxreturn preparation computer. Moreover, the method may include theco-browsing module sending data related to the tax return to the supportcomputer only after the support computer enters the access code at apage accessed through the hyperlink.

Still another embodiment is directed to a computer program productincluding a non-transitory computer readable storage medium embodyingone or more instructions executable by a computer system having a servercomputing device and a tax return preparation computing device toperform a process for masking tax data during collaborative preparationof an electronic tax return using a system including a server computer,a tax return preparation computer, and a support computer operativelycoupled by a network. The process includes a first browser running onthe tax return preparation computer automatically masking a tax datumwithout user intervention before transmitting the tax datum to theserver computer for subsequent transmission to the support computer. Thetax datum is masked in real time during collaborative preparation of theelectronic tax return.

BRIEF DESCRIPTION OF THE DRAWINGS

The foregoing and other aspects of embodiments are described in furtherdetail with reference to the accompanying drawings, in which the sameelements in different figures are referred to by common referencenumerals, wherein:

FIGS. 1 to 4 are schematic diagrams illustrating the implementation oftaxpayer data masking systems on computing devices according to variousembodiments.

FIGS. 5 to 10 are block diagrams of computer systems according tovarious embodiments on which taxpayer data masking systems according tovarious embodiments may be implemented.

FIG. 11 is a block diagram of a computing apparatus or system in whichvarious embodiments may be implemented or that may be utilized toexecute various embodiments.

FIGS. 12 to 20B generally illustrate various user interfaces forcollaborative tax return preparation including masking of taxpayer data.

FIGS. 21 to 23 are flow charts depicting computer-implemented methods ofmasking tax data during collaborative preparation of an electronic taxreturn according to various embodiments.

FIG. 24 is a flow chart depicting a computer-implemented method ofsecurely initiating collaborative preparation of an electronic taxreturn according to one embodiment.

In order to better appreciate how to obtain the above-recited and otheradvantages and objects of various embodiments, a more detaileddescription of embodiments is provided with reference to theaccompanying drawings. It should be noted that the drawings are notdrawn to scale and that elements of similar structures or functions arerepresented by like reference numerals throughout. It will be understoodthat these drawings depict only certain illustrated embodiments and arenot therefore to be considered limiting of scope of embodiments.

DETAILED DESCRIPTION OF ILLUSTRATED EMBODIMENTS

Embodiments describe methods, systems and articles of manufacture formasking tax data during collaborative preparation of an electronic taxreturn. In particular, the embodiments describe recognizing and maskingsensitive taxpayer data before transmitting the sensitive taxpayer datato a support computer.

Some current electronic tax return preparation systems are configuredfor collaborative electronic tax return preparation. Current systemsfacilitate a support user (e.g., a family member, a friend, anaccountant, a customer service associate—“CSA”, etc.) assisting apreparer user (e.g., taxpayer, tax preparer, etc.) in real time duringthe preparation of an electronic tax return using a tax returnpreparation program. Examples of tax return preparation programs thatmay be programmed to incorporate or utilize collaborative electronic taxreturn preparation according to embodiments include desktop or onlineversions of TURBOTAX, PROSERIES, and LACERTE tax return preparationapplications, available from Intuit Inc. TURBOTAX, PROSERIES AND LACERTEare registered trademarks of Intuit Inc., Mountain View Calif.Collaborative tax return preparation systems are described in U.S.application Ser. No. 14/528,719, filed Oct. 30, 2014, the contents ofwhich have been previously incorporated-by-reference herein.

However, the taxpayer's sensitive information may be exposed to thesupport user during collaborative tax return preparation. Depending onthe nature of the relationship between the support and taxpayer, it maybe desirable to control the exposure of sensitive information to thesupport user. For instance, while a taxpayer may not be concerned aboutexposing their social security number to their parent, the taxpayer maynot want to expose their social security number to a CSA for the taxreturn preparation program.

The embodiments described herein address the problem of sensitivetaxpayer information exposure during collaborative tax returnpreparation by using various systems and components to mask thesensitive taxpayer information before the taxpayer information is sentto the support computer of the support user. This improves the securityof and increases taxpayer confidence in collaborative tax returnpreparation. Improving the customer experience increases the probabilitythat a taxpayer will use and benefit from support provided throughcollaborative tax return preparation.

The embodiments described herein address thecomputer-centric/Internet-centric problem of sensitive taxpayerinformation exposure during collaborative tax return preparation. Theembodiments transform the taxpayer information transmitted to thesupport computer to address this problem. The embodiments also modifythe user interface on the support computer to address this problem.

As used in this application, a “preparer,” “user” or “taxpayer”includes, but is not limited to, a person preparing a tax return usingtax return preparation software. The “preparer,” “user” or “taxpayer”may or may not be obligated to file the tax return. As used in thisapplication, “tax data” includes, but is not limited to, informationthat may affect a user's income tax burden, including informationtypically included in a tax return. As used in this application,“taxpayer data” includes, but is not limited to, information relating toa taxpayer, including, but not limited to, tax data. The terms “taxdata” and “taxpayer data,” as used in this application, also include,but are not limited to, partially or fully completed tax forms(electronic and hard copy) that include information typically includedin a tax return.

As used in this application, “financial management system” includes, butis not limited to, software that oversees and governs an entity'sincome, expenses, and assets. An exemplary financial management systemis MINT Financial Management Software, which is available from IntuitInc. of Mountain View, Calif. A financial management system is executedto assist a user with managing its finances, and is used solely forfinancial management. Financial management systems manage financialtransaction data from financial transaction generators such as accountsincluding checking, savings, money market, credit card, stock, loan,mortgage, payroll or other types of account. Such financial transactiongenerators can be hosted at a financial institution such as a bank, acredit union, a loan services or a brokerage. Financial transaction datamay include, for example, account balances, transactions (e.g.,deposits, withdraws, and bill payments), debits, credit cardtransactions (e.g., for merchant purchases). Financial managementsystems can also obtain financial transaction data directly from amerchant computer or a point of sale terminal. Financial managementsystems can include financial transaction data aggregators that manageand organize financial transaction data from disparate sources. Whilecertain embodiments are described with reference to MINT FinancialManagement Software, the embodiments described herein can include otherfinancial management systems such as QUICKEN Financial ManagementSoftware, QUICKRECIPTS Financial Management Software, FINANCEWORKSFinancial Management Software, Microsoft Money Financial ManagementSoftware and YODLEE Financial Management Software (available fromYodlee, Inc. of Redwood City, Calif.).

As used in this application, “computer,” “computer device,” or“computing device” includes, but are not limited to, a computer (laptopor desktop) and a computer or computing device of a mobile communicationdevice, smartphone and tablet computing device such as an IPAD(available from Apple Inc. of Cupertino, Calif.). As used in thisapplication, “tax preparation system,” “tax preparation computingdevice,” “tax preparation computer,” “tax preparation software,” “taxpreparation module,” “tax preparation application,” “tax preparationprogram,” “tax return preparation system,” “tax return preparationcomputing device,” “tax return preparation computer,” “tax returnpreparation software,” “tax return preparation module,” “tax returnpreparation application,” or “tax return preparation program” includes,but are not limited to, one or more separate and independent softwareand/or hardware components of a computer that must be added to a generalpurpose computer before the computer can prepare tax returns, andcomputers having such components added thereto.

As used in this application, “server” or “server computer” includes, butis not limited to, one or more separate and independent software and/orhardware components of a computer that must be added to a generalpurpose computer before the computer can receive and respond to requestsfrom other computers and software in order to share data or hardware andsoftware resources among the other computers and software, and computershaving such components added thereto. As used in this application,“browser,” “web browser,” “browser program” or “web browser program”includes, but is not limited to, one or more separate and independentsoftware and/or hardware components of a computer that must be added toa general purpose computer before the computer can receive, display andtransmit resources from/to the World Wide Web. As used in thisapplication, “website” includes, but is not limited to, one or moreoperatively coupled webpages.

As used in this application, “input/output module” includes, but is notlimited to, one or more separate and independent software and/orhardware components of a computer that must be added to a generalpurpose computer before the computer can communicate with and facilitatethe receipt and transfer of information, including tax data and taxpayerdata, from and to other computers. As used in this application, “memorymodule” includes, but is not limited to, one or more separate andindependent software and/or hardware components of a computer that mustbe added to a general purpose computer before the computer can storeinformation, including tax data and taxpayer data.

As used in this application, “masking module” includes, but is notlimited to, one or more separate and independent components of acomputer that must be added to a general purpose computer before thecomputer can obfuscate data that forms portions of a user interfaceintended to be displayed to a user. As used in this application,“pattern recognition module” includes, but is not limited to, one ormore separate and independent software and/or hardware components of acomputer that must be added to a general purpose computer before thecomputer can analyze data to identify the category to which the databelongs. As used in this application, “co-browsing module” includes, butis not limited to, one or more separate and independent software and/orhardware components of a computer that must be added to a generalpurpose computer before the computer can facilitate a sharedweb-browsing experience for a plurality of users. As used in thisapplication, “metadata markup module” includes, but is not limited to,one or more separate and independent software and/or hardware componentsof a computer that must be added to a general purpose computer beforethe computer can analyze a taxpayer data entry user interface toidentify and tag a sensitive taxpayer data field.

As used in this application, an action occurring “in real time” during aprocess includes, but is not limited to, the action occurring theprocess with minimal delay (if any) in the process, such that a typicaluser would not notice any delay in the process.

FIG. 1 depicts an exemplary hardware system 100 on which a tax datamasking system 102 according to one embodiment can be executed. Thehardware system 100 according to this embodiment includes a servercomputing device 104, a tax return preparation computing device 106 anda support computing device 108, which are operatively coupled via anetwork 110. The network 110 may be two or more networks depending onthe system configuration and communication protocols employed. One ormore or all of networks 110 may be, for example, a wireless or cellularnetwork, a Local Area Network (LAN) and/or a Wide Area Network (WAN).Reference to network 110 generally is not intended to refer to aspecific network or communications protocol, and embodiments can beimplemented using various networks 110 and combinations thereof.

The tax data masking system 102 includes a tax return preparationprogram 112 running on the server computing device 104 and first andsecond browser programs 114, 116 running on the tax return preparationcomputing device 106 and the support computing device 108, respectively.The first and second browser programs 114, 116 are configured to accessvarious programs running on the server computing device 104. Forinstance, the first browser program 114 is configured to access the taxreturn preparation program 112 running on the server computing device104. The second browser program 114 is configured to access aco-browsing program, which is described below. The tax data maskingsystem 102 also includes a masking module 118 (in the first browserprogram 114) configured to obfuscate data that forms portions of a userinterface intended to be displayed to a user. Data can be obfuscated bymasking the portions of the user interface including the data beforedisplay to the user.

The various computing devices 104, 106, 108 may include visual displaysor screens 120 operatively coupled thereto. In the embodiment depictedin FIG. 1, the tax return preparation computing device 106 includes adisplay or a screen 120 through which a preparer user physicallyinterfaces with the tax return preparation computing device 106 and thefirst browser program 114 running thereon. Also, the support computingdevice 108 includes a display or a screen 120 through which a supportuser physically interfaces with the support computing device 108 and thesecond browser program 116 running thereon.

While the tax return preparation computing device 106 and the supportcomputing device 108 in FIG. 1 are depicted as desktop computers runningfirst and second browsers 114, 116 thereon, In other embodiments, one orboth of the return preparation computing device 106 and the supportcomputing device 108 may be mobile computing devices (e.g., smartphonesor tablets). In such embodiments, communication may occur over a privatecommunication network (e.g., mobile phone network). Also, the programsrunning on the server computing device 104 may be accessed byapplications running on the tax return preparation computing device 106and the support computing device 108.

In other embodiments, a tax return preparation computing program may runon the tax return preparation computing device 106.

Examples of tax return preparation programs 112 that may be programmedto utilize the masking module 118 according to embodiments includedesktop or online versions of TURBOTAX, PROSERIES, and LACERTE taxreturn preparation applications, available from Intuit Inc. TURBOTAX,PROSERIES AND LACERTE are registered trademarks of Intuit Inc., MountainView Calif.

FIG. 2 depicts another exemplary hardware system 100′ on which a taxdata masking system 102′ according to another embodiment can beexecuted. The systems 100′, 102′ depicted in FIG. 2 are similar to thesystems 100, 200 depicted in FIG. 1. However, in addition to the maskingmodule 118, the first browser program 114 in the collaborative taxpreparation system 102′ depicted in FIG. 2 also includes a patternrecognition module 122. The pattern recognition module 122 is configuredto analyze data to identify the category to which the data belongs. Forinstance, the pattern recognition module 122 can be configured toidentify numerical data entered into the first browser program 114 inthe format XXX-XX-XXXX as a social security number with a predeterminedsensitivity level corresponding thereto.

FIG. 3 depicts still another exemplary hardware system 100″ on which atax data masking system 102″ according to still another embodiment canbe executed. The systems 100″, 102″ depicted in FIG. 3 are similar tothe systems 100′, 200′ depicted in FIG. 2. However, in addition to thetax return preparation program 112, the server computing device 104depicted in FIG. 3, also includes a co-browsing module 124 runningthereon. The co-browsing module 124 is configured to facilitate a sharedweb-browsing experience for a plurality of users by passing data betweenthe tax return preparation computing device 106 and the supportcomputing device 108. For instance, co-browsing module 124 can beconfigured to facilitate a support user's access to a preparer user'sonline tax return preparation experience by displaying portions of thepreparer user's online tax return preparation user interface to thesupport user.

FIG. 4 depicts still another exemplary hardware system 100″′ on which atax data masking system 102″′ according to still another embodiment canbe executed. The systems 100″′, 102″′ depicted in FIG. 4 are similar tothe systems 100″, 200″ depicted in FIG. 3. However, in addition to thetax return preparation program 112 and the co-browsing module 124, theserver computing device 104 depicted in FIG. 4, also includes a metadatamarkup module 126 running thereon. The metadata markup module 126 isconfigured to analyze a taxpayer data entry user interface to identifyand tag a sensitive taxpayer data field. For instance, metadata markupmodule 126 can be configured to analyze the current tax year's federalincome tax data entry user interface and to tag the social securitynumber field in the user interface as asking for sensitive informationwith a predetermined sensitivity level corresponding thereto.

FIG. 5 depicts, in greater detail, another hardware system 100 aconfigured to host a tax data masking system according to oneembodiment. Like the hardware system 100 depicted in FIG. 1, thehardware system 100 a in FIG. 5 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. The servercomputing device 104 includes an input/output module 120, a memorymodule 122 and a processor 124. The tax return preparation computingdevice 106 includes an input/output module 120, a memory module 122 anda processor 124. The support computing device 108 includes aninput/output module 120, a memory module 122 and a processor 124. Theinput/output modules 120 are configured to communicate with andfacilitate the receipt and transfer of information, including tax dataand taxpayer data, as well as information relating to the sensitivity oftax data and taxpayer data. The memory modules 122 are configured toinformation, including tax data and taxpayer data, as well asinformation relating to the sensitivity of tax data and taxpayer data,in proper formats for masking tax data during collaborative tax returnpreparation. The processors 124 are configured to run programs (e.g.,tax return preparation program 112 and first and second browser programs114, 116), as shown in FIG. 6.

FIG. 6 depicts, in even greater detail, another hardware system 100 bconfigured to host a tax data masking system 102 according to oneembodiment. Like the hardware systems 100 a depicted in FIG. 5, thehardware system 100 b in FIG. 6 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. The processor132 in the server computing device 104 has a tax return preparationprogram 112 running thereon. The processor 132 in the tax returnpreparation computing device 106 has a first browser program 114 runningthereon. The processor 132 in the support computing device 108 has asecond browser program 116 running thereon.

FIG. 7 depicts, in even greater detail, another hardware system 100 cconfigured to host a tax data masking system 102 according to oneembodiment. Like the hardware systems 100 b depicted in FIG. 6, thehardware system 100 c in FIG. 7 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. The firstbrowser program 114 depicted in FIG. 7 includes a masking module 118(described above).

FIG. 8 depicts, in even greater detail, another hardware system 100 dconfigured to host a tax data masking system 102 according to oneembodiment. Like the hardware systems 100 c depicted in FIG. 7, thehardware system 100 d in FIG. 8 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. In addition tothe masking module 118, the first browser program 114 depicted in FIG. 8also includes a pattern recognition module 122 (described above).

FIG. 9 depicts, in even greater detail, another hardware system 100 econfigured to host a tax data masking system 102 according to oneembodiment. Like the hardware systems 100 d depicted in FIG. 8, thehardware system 100 e in FIG. 9 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. In addition tothe tax return preparation program 112, the processor 132 in the servercomputing device 104 depicted in FIG. 9 also includes a co-browsingmodule 124 (described above). In the embodiment depicted in FIG. 9, thetax return preparation program 112 and the co-browsing module 124 arerelated but separate components such that the tax return preparationprogram 112 can function (without co-browsing) without executing theco-browsing module 124.

FIG. 10 depicts, in even greater detail, another hardware system 100 fconfigured to host a tax data masking system 102 according to oneembodiment. Like the hardware systems 100 e depicted in FIG. 9, thehardware system 100 f in FIG. 10 includes a server computing device 104,a tax return preparation computing device 106 and a support computingdevice 108 that are operatively coupled by a network 110. In addition tothe tax return preparation program 112 and the co-browsing module 124,the processor 132 in the server computing device 104 depicted in FIG. 10also includes a metadata markup module 126 (described above). In theembodiment depicted in FIG. 10, the tax return preparation program 112,the co-browsing module 124, and the metadata markup module 126 arerelated but separate components such that each component can functionwithout executing the other components.

While FIGS. 1-10 depict the server computing device 104, the tax returnpreparation computing device 106, and the support computing device 116as being operatively coupled by the same network 110, in otherembodiments, these computing devices may be operatively coupled by aplurality (e.g., two or three) networks. While FIGS. 1-10 depict themasking module 118 and the pattern recognition module 122 as parts offirst browser 114, in other embodiments, these modules and programs maybe separate but related programs running on the tax return preparationcomputing device 106. FIGS. 1-10 depict the tax return preparationprogram 112, the co-browsing module 124, and the metadata markup module126 as separate but related programs running on the server computingdevice 104. However, in other embodiments, these modules and programsmay be parts of each other.

FIG. 11 generally illustrates certain components of a computing device200 that may be utilized to execute embodiments and that include amemory 210, program instructions 212, a processor or controller 220 toexecute instructions 212, a network or communications interface 230,e.g., for communications with a network or interconnect 240 between suchcomponents. The memory 210 may be or include one or more of cache, RAM,ROM, SRAM, DRAM, RDRAM, EEPROM and other types of volatile ornon-volatile memory capable of storing data. The processor unit 220 maybe or include multiple processors, a single threaded processor, amulti-threaded processor, a multi-core processor, or other type ofprocessor capable of processing data. Depending on the particular systemcomponent (e.g., whether the component is a computing device or a handheld mobile communications device), the interconnect 240 may include asystem bus, LDT, PCI, ISA, or other types of buses, and thecommunications or network interface may, for example, be an Ethernetinterface, a Frame Relay interface, or other interface. The networkinterface 230 may be configured to enable a system component tocommunicate with other system components across a network which may be awireless or various other networks. It should be noted that one or morecomponents of computing device 200 may be located remotely and accessedvia a network. Accordingly, the system configuration provided in FIG. 11is provided to generally illustrate how embodiments may be configuredand implemented. The processors 132 in the server computing device 104,the tax return preparation computing device 106 and the supportcomputing device 108 are programmed with respective electronic tax dataacquisition program 112, and first and second browser programs 114, 116so that they are no longer generic computing devices.

FIGS. 12 to 20B depict various exemplary screenshots displayed in userinterfaces 300 of the first and second browser programs 114, 116 in theembodiments described above. The screenshots depict collaborative taxreturn preparation and masking of taxpayer data during same.

FIG. 12 depicts a user interface 300 facilitating initiation of acollaborative tax return preparation session. The user interface display300 may be displayed to a preparer user on a screen 120 of a tax returnpreparation computing device 106. The user interface 300 includes aselectable user interface object 302 (i.e., a “button” labeled “P2PHelp”) configured to enable initiation of a collaborative tax returnpreparation session when selected. While FIG. 12 depicts the selectableuser interface object 302 begin a part of a particular user interface300 displayed during electronic tax preparation, the selectable userinterface object 302 may be included in some or all of the particularuser interface 300 displayed during electronic tax preparation to allowinitiation of a collaborative tax return preparation session at any stepof electronic tax preparation.

FIG. 13 depicts another user interface 300 facilitating initiation of acollaborative tax return preparation session. The user interface display300 may be displayed to a preparer user on a screen 120 of a tax returnpreparation computing device 106. The user interface 300 includes asecondary (i.e., “pop-up”) window 304 configured to enable entry of anemail address for a support user (i.e., the user from whom the prepareruser is seeking assistance). The secondary window 304 includes a textboxuser interface object 306 for entry of the support user's email address.The secondary webpage 304 may be rendered in a modal window such thatthe tax preparation webpage remains open, but is inaccessible, until themodal secondary webpage is closed.

FIG. 14 depicts the secondary window 304 from the user interface 300 inFIG. 13. The textbox user interface object 306 in FIG. 14 includes anemail address (i.e., of the support user chosen by the preparer user) asentered by the preparer user into the textbox user interface object 306.

FIG. 15 depicts another secondary window 304′ in a user interface 300that may be displayed to a preparer user on a screen 120 of a tax returnpreparation computing device 106. The secondary window 304′ may bedisplayed after the preparer user enters an email address of the supportuser into the textbox user interface object 306 as shown in FIG. 14. Thesecondary window 304 in FIG. 15 includes a token (i.e., 1461) that isrequired for the support user to join the collaborative tax returnpreparation session. The token is a first security measure. It isintended that the preparer user communicates the token to the supportuser (e.g., by voice or SMS text) to allow the support user to join thecollaborative tax return preparation session.

FIG. 16 depicts a user interface 300 that may be displayed to a supportuser on a screen 120 of a support computing device 108. The userinterface 300 depicts an email informing the support user that thepreparer user has requested that they join a collaborative tax returnpreparation session to assist the preparer user with their tax returnpreparation. The email is a second security measure. The email in theuser interface 300 includes a hyperlinked user interface object 308configured to display a user interface 300 on the second browser program116 running on the support computing device 108 when selected. Thehyperlinked user interface object 308 may include a universally uniqueidentifier (“UUID”) generated URL (e.g., a 32 character hexadecimalstring) for increased security.

FIG. 17 depicts another user interface 300 that may be displayed to asupport user on a screen 120 of a support computing device 108. The userinterface 300 in FIG. 17 may be displayed in response to selection ofthe hyperlinked user interface object 308 in FIG. 16. The user interface300 in FIG. 17 includes a textbox user interface object 306′ for entryof the token. The textbox user interface object 306′ in FIG. 17 includesthe token (i.e., 1461) as entered by the support user into the textboxuser interface object 306′. The preparer user previously communicatedthe token to the support user. Entry of the token in the textbox userinterface object 306′ by the support user authenticates the supportuser's identity and initiates the collaborative tax return preparationsession. The collaborative tax return preparation session may beimplemented using the co=browsing module running on the server computingdevice 103 as described above.

FIGS. 18A and 18B depict user interfaces 300 a, 300 b that may bedisplayed to a preparer user and a support user, respectively, during acollaborative tax return preparation session. User interface 300 a maybe displayed to the preparer user on a screen 120 of a tax returnpreparation computing device 106. User interface 300 b may be displayedto the support user on a screen 120 of a support computing device 108.During the collaborative tax return preparation session, the supportuser's mouse indicator 310 is displayed on the support computing device108 screen 120, as shown in FIG. 18B. The support user's mouse 310 isalso displayed to the prepare user as a shadow mouse indicator 312 onthe tax return preparation computing device 106 screen 120, as shown inFIG. 18A.

FIGS. 19A and 19B depict user interfaces 300 a, 300 b that may bedisplayed to a preparer user and a support user, respectively, during acollaborative tax return preparation session. User interface 300 a maybe displayed to the preparer user on a screen 120 of a tax returnpreparation computing device 106. User interface 300 b may be displayedto the support user on a screen 120 of a support computing device 108.During the collaborative tax return preparation session, the supportuser may highlight a portion of the user interface 300 b with ahighlight box 314 on the support computing device 108 screen 120 (e.g.,by clicking and drawing a box around the portion of the user interface300 b), as shown in FIG. 19B. The highlight box 314 is also displayed tothe prepare user as a shadow highlight box 316 on the tax returnpreparation computing device 106 screen 120, as shown in FIG. 19A. Themouse indicator 310 and shadow mouse indicator 312 are also displayed onuser interfaces 300 b, 300 a in FIGS. 19B and 19A, respectively.

FIGS. 20A and 20B depict user interfaces 300 a, 300 b that may bedisplayed to a preparer user and a support user, respectively, during acollaborative tax return preparation session. User interface 300 a maybe displayed to the preparer user on a screen 120 of a tax returnpreparation computing device 106. User interface 300 b may be displayedto the support user on a screen 120 of a support computing device 108.During the collaborative tax return preparation session, the prepareruser may enter sensitive taxpayer data 318 (e.g., social securitynumber) in the user interface 300 a, as shown in FIG. 20A. Thecollaborative tax return preparation system 102 is configured to displaymodifications to one of the user interfaces 300 a, 300 b in the otheruser interface 300 b, 300 a in real time. However, when the system 102recognizes sensitive data 318 (e.g., using the pattern recognitionmodule 122) or sensitive data categories/fields 320 (e.g., using themetadata markup module 126), the system 102 masks the sensitive data 318in the sensitive data category/fields 320 (e.g., using the maskingmodule 118) to form masked sensitive data 322. The sensitive data 318 isdisplayed to the prepare user on the tax return preparation computingdevice 106 screen 120, as shown in FIG. 20A. However, only the maskedsensitive data 322 (and NOT the sensitive data 318) is sent to thesupport computing device 108 for display, as shown in FIG. 20B.

As such, sensitive data is never transmitted to the support computingdevice 108, thereby preserving security of the collaborative taxpreparation system 102. The system 102 (e.g., the masking module 118,the pattern recognition module 122, and/or the metadata markup module126) can also determine a sensitivity level for a particular piece ofsensitive data 318 and a security level for a particular support user.Then, the system 102 can determine, based on the sensitivity level ofthe sensitive data 318 and the security level of the support user, whenthe sensitive data 318 should be masked before sending to the supportuser computer 108. Recognition of sensitive tax data 318 or sensitivetax data category/field 320, masking of sensitive tax data 318, andtransmission and display of masked sensitive data 322 occurs in realtime during the collaborative tax return preparation process so that thepreparer and support users do not notice any appreciable lag.

Having described various aspects of tax data masking systems accordingto various embodiments, computer-implemented methods for maskingtaxpayer data during collaborative preparation of an electronic taxreturn using the tax data masking systems will now be described.

FIG. 21 depicts a computer-implemented method 400 a for masking tax dataduring collaborative preparation of an electronic tax return accordingto one embodiment. The method 400 a may be implemented using thecollaborative tax return preparation systems (e.g., 102) running on thehardware systems (e.g., 100) depicted in FIGS. 1-10.

At step 402, the system 102 recognizes sensitive taxpayer data 318(e.g., social security number, credit card number, total income, etc.)entered by the preparer user in the user interface 300 a displayed onthe on the tax return preparation computing device 106 screen 120, asshown in FIG. 20A. The pattern recognition module 122 in the firstbrowser program 114 may scan the entered data to identify sensitivetaxpayer data 318 based on the format of the data.

At step 404, the system 102 masks the sensitive taxpayer data 318 togenerate masked taxpayer data 322. The masking module 118 in the firstbrowser program 114 may locate the portion of the user interface 300 acontaining the sensitive taxpayer data 318 and replace that portion withunreadable images (e.g., splat characters) in the user interface 300 bfor transmission to the support computing device 108. The masking module118 may be a JavaScript program module in the first browser program 114.

At step 406, the system 102 transmits (using the input/output modules inthe tax return preparation computing device 106 and the server computingdevice 104) the masked sensitive taxpayer data 322 to the supportcomputing device 108. The masked sensitive taxpayer data 322 istransmitted through the network 110, which may include the Internet.

At step 408, the system 102 displays the masked sensitive taxpayer data322, as a part of the user interface 300 b in the support computingdevice 108 screen 120. The system 102 displays the masked sensitivetaxpayer data 322 in real time.

The method 400 a facilitates co-browsing in a collaborative tax returnpreparation process without displaying sensitive taxpayer data to asupport user. This increases security of the collaborative tax returnpreparation system 102. The method 400 a may include determining asensitivity level for a particular piece of sensitive data 318 and asecurity level for a particular support user. Then, the system 102 candetermine, based on the sensitivity level of the sensitive data 318 andthe security level of the support user, when the sensitive data 318should be masked before sending to the support user computer 108.Recognition of sensitive tax data 318 (step 402), masking of sensitivetax data 318 (step 404), and transmission (step 406) and display ofmasked sensitive data 322 (step 408) occurs in real time during thecollaborative tax return preparation process so that the preparer andsupport users do not notice any appreciable lag. The method 400 a cantake place automatically without user intervention.

FIG. 22 depicts a computer-implemented method 400 b for masking tax dataduring collaborative preparation of an electronic tax return accordingto another embodiment. The method 400 b may be implemented using thecollaborative tax return preparation systems (e.g., 102) running on thehardware systems (e.g., 100) depicted in FIGS. 1-10.

At step 402′, the system 102 recognizes a sensitive taxpayer datacategory/field 320 (e.g., social security number, credit card number,total income, etc.) in an electronic tax form, as shown in FIG. 20A. Themetadata markup module 126 in the first browser program 114 may scan theelectronic tax form to identify fields requesting sensitive taxpayerdata based on the format of the field, previous tagging of the sameelectronic tax form, OCR, etc.

At step 402″, the system 102 (e.g., the pattern recognition module 122)recognizes data entered into the sensitive taxpayer data category/field320 by the preparer user in the user interface 300 a displayed on the onthe tax return preparation computing device 106 screen 120 as sensitivetaxpayer data 318. The system 102 recognizes the sensitive taxpayer data318 based only on the fact that the data was entered into the sensitivetaxpayer data category/field 320. In other embodiments, the system 102may recognize data as sensitive taxpayer data 318 base on both theformat of the data and the fact that the data was entered into thesensitive taxpayer data category/field 320.

At step 404, the system 102 masks the sensitive taxpayer data 318 togenerate masked taxpayer data 322. The masking module 118 in the firstbrowser program 114 may locate the portion of the user interface 300 acontaining the sensitive taxpayer data 318 and replace that portion withunreadable images (e.g., splat characters) in the user interface 300 bfor transmission to the support computing device 108. The masking module118 may be a JavaScript program module in the first browser program 114.

At step 406, the system 102 transmits (using the input/output modules inthe tax return preparation computing device 106 and the server computingdevice 104) the masked sensitive taxpayer data 322 to the supportcomputing device 108. The masked sensitive taxpayer data 322 istransmitted through the network 110, which may include the Internet.

At step 408, the system 102 displays the masked sensitive taxpayer data322, as a part of the user interface 300 b in the support computingdevice 108 screen 120. The system 102 displays the masked sensitivetaxpayer data 322 in real time.

The method 400 b facilitates co-browsing in a collaborative tax returnpreparation process without displaying sensitive taxpayer data to asupport user. This increases security of the collaborative tax returnpreparation system 102. The method 400 b may include determining asensitivity level for a particular piece of sensitive data 318 and asecurity level for a particular support user. Then, the system 102 candetermine, based on the sensitivity level of the sensitive data 318 andthe security level of the support user, when the sensitive data 318should be masked before sending to the support user computer 108.Recognition of sensitive tax data category/field 320 (step 402′),recognition of sensitive tax data 318 (step 402″), masking of sensitivetax data 318 (step 404), and transmission (step 406) and display ofmasked sensitive data 322 (step 408) occurs in real time during thecollaborative tax return preparation process so that the preparer andsupport users do not notice any appreciable lag. The method 400 b cantake place automatically without user intervention.

FIG. 23 depicts a computer-implemented method 400 c for masking tax dataduring collaborative preparation of an electronic tax return accordingto still another embodiment. The method 400 c may be implemented usingthe collaborative tax return preparation systems (e.g., 102) running onthe hardware systems (e.g., 100) depicted in FIGS. 1-10.

At step 402, the system 102 recognizes sensitive taxpayer data 318(e.g., social security number, credit card number, total income, etc.)entered by the preparer user in the user interface 300 a displayed onthe on the tax return preparation computing device 106 screen 120, asshown in FIG. 20A. The pattern recognition module 122 in the firstbrowser program 114 may scan the entered data to identify sensitivetaxpayer data 318 based on the format of the data.

Unlike method 400 a depicted in FIG. 21, method 400 c includes steps 410and 412 intervening between steps 402 and 404′. At step 410, the system102 determines a sensitivity level for the sensitive tax data 318. Thepattern recognition module 122 can determine the sensitivity level basedon the format of the data.

At step 412, the system 102 determines a security level for the supportuser. The system 102 can determine the security level based on thecharacteristics of the support user chosen by the preparer user. Thesystem 102 can also ask the preparer user to choose a security level.

At step 404′, the system 102 masks the sensitive taxpayer data 318 togenerate masked taxpayer data 322 based on the sensitivity and securitylevels. If the security level of the support user allows access to dataat the sensitivity level, no masking is performed. Otherwise, themasking module 118 in the first browser program 114 may locate theportion of the user interface 300 a containing the sensitive taxpayerdata 318 and replace that portion with unreadable images (e.g., splatcharacters) in the user interface 300 b for transmission to the supportcomputing device 108. The masking module 118 may be a JavaScript programmodule in the first browser program 114.

At step 406, the system 102 transmits (using the input/output modules inthe tax return preparation computing device 106 and the server computingdevice 104) the masked sensitive taxpayer data 322 to the supportcomputing device 108. The masked sensitive taxpayer data 322 istransmitted through the network 110, which may include the Internet.

At step 408, the system 102 displays the masked sensitive taxpayer data322, as a part of the user interface 300 b in the support computingdevice 108 screen 120. The system 102 displays the masked sensitivetaxpayer data 322 in real time.

The method 400 c facilitates co-browsing in a collaborative tax returnpreparation process without displaying sensitive taxpayer data to asupport user. This increases security of the collaborative tax returnpreparation system 102. The method 400 c may include determining asensitivity level for a particular piece of sensitive data 318 and asecurity level for a particular support user. Then, the system 102 candetermine, based on the sensitivity level of the sensitive data 318 andthe security level of the support user, when the sensitive data 318should be masked before sending to the support user computer 108.Recognition of sensitive tax data 318 (step 402), determining thesensitivity level (step 410), determining the security level (step 412),masking of sensitive tax data 318 (step 404′), and transmission (step406) and display of masked sensitive data 322 (step 408) occurs in realtime during the collaborative tax return preparation process so that thepreparer and support users do not notice any appreciable lag. The method400 c can take place automatically without user intervention.

FIG. 24 depicts a computer-implemented method 500 for initiatingcollaborative preparation of an electronic tax return according to oneembodiment. The method 500 may be implemented using the collaborativetax return preparation systems (e.g., 102) running on the hardwaresystems (e.g., 100) depicted in FIGS. 1-10.

At step 502, the system 102 (e.g., the co-browsing module 124) sendsrequest to join a collaborative tax return preparation session to asupport computing device 108. The support computing device 108 displaysthe request in a user interface 300 on a screen 120 as shown in FIG. 16.The request can include a hyperlinked user interface object 308configured to display a user interface 300 on the second browser program116 running on the support computing device 108 when selected. Thehyperlinked user interface object 308 may include a universally uniqueidentifier (“UUID”) generated URL (e.g., a 32 character hexadecimalstring) for increased security. The hyperlinked user interface object308 is one of two security measures.

At step 504, the system 102 (e.g., the co-browsing module 124) displaysa token (second of two security measures) to the preparer user on ascreen 120 of a tax return preparation computing device 106, as shown inFIG. 15.

At step 506, the system 102 (e.g., the co-browsing module 124)optionally displays a user interface 300 to the preparer user on ascreen 120 of a tax return preparation computing device 106 instructingthe preparer user to communicate the toke to the support user (e.g., byphone or SMS text).

At step 508, the system 102 (e.g., the co-browsing module 124) receivesthe token from the support user through the user interface 300 displayedon the screen 120 of the support computing device 108 as shown in FIG.17.

At step 510, the system 102 (e.g., the co-browsing module 124) initiatesthe collaborative tax return preparation session as shown in FIGS. 18Ato 20B. The system 102 has received both forms of identityauthentication (selection of the hyperlinked user interface object 308and the token). Therefore, the system 102 can initiate the collaborativetax return preparation session with increased security.

After the system 102 has initiated the collaborative tax returnpreparation session, the system 102 can also mask sensitive taxpayerdata for display on the support computer 108 as depicted in FIGS. 20A-23and described above.

While FIGS. 21-24 illustrate embodiments of masking a single sensitivetaxpayer datum, embodiments are not so limited. For example, the system102 may identify and mask a plurality of sensitive taxpayer data.

While FIGS. 21 and 22 illustrate methods using a single characteristicto identify sensitive taxpayer data, embodiments are not so limited. Forexample, multiple characteristics (e.g., data format and datacategory/field) can be used to improve identification of sensitivetaxpayer data.

While FIGS. 21-24 illustrate embodiments of masking sensitive taxpayerdata during collaborative tax return preparation, embodiments are not solimited. For example, the masking systems and methods described hereinare applicable to any peer-to-peer co-browsing system. In oneembodiment, a financial advisor or trusted friend may co-browse a user'sfinancial management system to provide financial advice. The maskingsystems and methods described herein can protect sensitive financialinformation during such a co-browsing system.

Exemplary system to which the masking systems and methods are applicableinclude financial management systems (such as MINT or QUICKEN financialmanagement systems), accounts the taxpayer has with an online socialmedia website, third parties databases or resources (such as governmentdatabases or documents, such as property tax records, Department ofMotor Vehicle (DMV) records), and other external sources of taxpayerdata. MINT and QUICKEN are registered trademarks of Intuit Inc.,Mountain View, Calif.

Method embodiments or certain steps thereof, some of which may be loadedon certain system components, computers or servers, and others of whichmay be loaded and executed on other system components, computers orservers, may also be embodied in, or readable from, a non-transitory,tangible medium or computer-readable medium or carrier, e.g., one ormore of the fixed and/or removable data storage data devices and/or datacommunications devices connected to a computer. Carriers may be, forexample, magnetic storage medium, optical storage medium andmagneto-optical storage medium. Examples of carriers include, but arenot limited to, a floppy diskette, a memory stick or a flash drive,CD-R, CD-RW, CD-ROM, DVD-R, DVD-RW, or other carrier now known or laterdeveloped capable of storing data. The processor 220 performs steps orexecutes program instructions 212 within memory 210 and/or embodied onthe carrier to implement method embodiments.

Although particular embodiments have been shown and described, it shouldbe understood that the above discussion is not intended to limit thescope of these embodiments. While embodiments and variations of the manyaspects of embodiments have been disclosed and described herein, suchdisclosure is provided for purposes of explanation and illustrationonly. Thus, various changes and modifications may be made withoutdeparting from the scope of the claims.

Moreover, while embodiments have been described with reference to datathat has been entered into a field, e.g., by the user, the embodimentsalso include data that have been obtained automatically without or withminimal user intervention.

Where methods and steps described above indicate certain eventsoccurring in certain order, those of ordinary skill in the art havingthe benefit of this disclosure would recognize that the ordering ofcertain steps may be modified and that such modifications are inaccordance with the variations of the disclosed embodiments.Additionally, certain of the steps may be performed concurrently in aparallel process as well as performed sequentially. Thus, the methodsshown in various flow diagrams are not intended to be limited to aparticular sequential order, unless otherwise stated or required.

Accordingly, embodiments are intended to exemplify alternatives,modifications, and equivalents that may fall within the scope of theclaims.

What is claimed is:
 1. A computer-implemented method for maskingsensitive data during a collaborative preparation of an electronic formusing a system including a server computer, a preparation computer, anda support computer operatively coupled by a network, the methodcomprising: executing a first browser on the preparation computer, thefirst browser being used by a user to enter data into the electronicform; the first browser identifying if data entered by the usercomprises a first datum for the electronic form comprising sensitivedata; and automatically masking, by a masking module of the firstbrowser, the first datum when the first datum is identified ascomprising sensitive data, said masking of the first datum beingperformed without user intervention and before transmitting the firstdatum to the server computer for subsequent transmission to the supportcomputer, the first datum being masked in real time during thecollaborative preparation of the electronic form such that the sensitivedata is not transmitted to the support computer or displayed by a secondbrowser program operating on the support computer.
 2. The method ofclaim 1, further comprising the masking module determining a securitylevel for the support computer and masking the first datum based on thesecurity level.
 3. The method of claim 1, wherein the first browserincludes a pattern recognition module and the method further comprisesthe pattern recognition module identifying the sensitive data.
 4. Themethod of claim 1, wherein the server computer includes a metadatamarkup module running thereon and the method further comprises themetadata markup module identifying sensitive data fields in theelectronic form.
 5. The method of claim 1, wherein the server computerincludes a co-browsing module running thereon and the method furthercomprises the co-browsing module sending data related to the electronicform to the preparation computer and the support computer for displayusing the first and second browser programs, respectively.
 6. The methodof claim 5, further comprising the co-browsing module sending aninvitation to join a co-browsing session to the support computer, theinvitation including a hyperlink.
 7. The method of claim 6, furthercomprising the co-browsing module generating an access code for theco-browsing session and sending the access code to the preparationcomputer.
 8. The method of claim 7, further comprising the co-browsingmodule sending data related to the electronic form to the supportcomputer only after the support computer enters the access code at apage accessed through the hyperlink.
 9. A system for masking sensitivedata during collaborative preparation of an electronic form, the systemcomprising: a server computer having a form preparation program runningthereon; a preparation computer having a first browser program runningthereon; and a support computer having a second browser program runningthereon, the server computer, preparation computer, and the supportcomputer being operatively coupled by a network; the first browser beingused by a user to enter data into the electronic form and being adaptedto identify if data entered by the user comprises a first datumcomprising sensitive data, the first browser including a masking moduleconfigured to automatically mask the first datum when the first datum isidentified as comprising sensitive data, said masking of the first datumbeing performed without user intervention and before transmitting thefirst datum to the server computer for subsequent transmission to thesupport computer, and the first datum being masked in real time duringcollaborative preparation of the electronic form such that sensitivedata is not transmitted to the support computer or displayed by thesecond browser program.
 10. The system of claim 9, wherein the maskingmodule is configured to determine a security level for the supportcomputer and to mask the first datum based on the security level. 11.The system of claim 9, wherein the first browser includes a patternrecognition module configured to identify sensitive user data.
 12. Thesystem of claim 9, wherein the server computer has a metadata markupmodule running thereon, the metadata markup module being configured toidentify sensitive user data fields.
 13. The system of claim 9, whereinthe server computer has a co-browsing module running thereon, theco-browsing module being configured to send data related to theelectronic form to the form preparation computer and the supportcomputer for display using the first and second browser programs,respectively.
 14. The system of claim 13, wherein the co-browsing moduleis configured to send an invitation to join a co-browsing session to thesupport computer, the invitation including a hyperlink.
 15. The systemof claim 14, wherein the co-browsing module is configured to generate anaccess code for the co-browsing session and send the access code to theform preparation computer.
 16. The system of claim 15, wherein theco-browsing module is configured to send data related to the electronicform to the support computer only after the support computer enters theaccess code at a page accessed through the hyperlink.
 17. The system ofclaim 9, wherein the masking module automatically masks the first datumwhen the first datum is identified as comprising sensitive data using aJavaScript program.